What Your Fitness App Knows About You: Strava, Fitbit, and Health Data Privacy
Fitness apps and wearables collect your location, heart rate, sleep, and more. Learn the real privacy risks and how to protect your health data.
What Your Fitness App Knows About You: Strava, Fitbit, and Health Data Privacy
Every morning you lace up your shoes, tap start on Strava, and head out for a run. Your Apple Watch tracks your heart rate. Your Fitbit logs your sleep. Your Peloton knows your VO2 max. These apps are helping you get healthier — but they also know more about your body and daily routine than almost anyone else in your life.
What Fitness Apps Actually Collect
The data goes far beyond step counts.
The Full Picture
| Category | Data Collected |
|---|---|
| Location | GPS routes, workout locations, commute patterns |
| Body | Height, weight, body fat percentage, BMI |
| Activity | Steps, workout types, calories burned, pace |
| Health | Heart rate, blood oxygen, sleep stages, stress levels |
| Reproductive | Menstrual cycles, ovulation, temperature changes |
| Behavioral | Exercise times, sleep schedule, daily routines |
Why Location Data Is the Biggest Risk
In 2018, Strava published a global heatmap of user activity. It inadvertently revealed the locations of secret military bases, intelligence facilities, and individual soldiers' jogging routes. For everyday users, the same data exposes your home address, your workplace, the route you run every Tuesday at 6 AM, and the gym you visit.
Real Privacy Incidents
The Strava Heatmap Disaster (2018)
Strava's global heatmap made classified military installations visible to anyone with an internet connection. Individual users' home locations were identifiable from their running patterns.
Fitbit Data Used as Court Evidence
In multiple U.S. court cases, Fitbit heart rate and activity data has been admitted as evidence — including in a murder trial. Your fitness data can and has been used against people in legal proceedings.
Period Tracking App Data Sharing
The Flo menstrual tracking app was caught sharing cycle data with Facebook and Google. After the Dobbs decision overturned Roe v. Wade, concerns escalated that period tracking data could be used in criminal investigations related to reproductive rights.
Privacy Comparison: Major Fitness Apps
| App | Third-Party Sharing | Ad Targeting | Data Deletion | E2E Encryption |
|---|---|---|---|---|
| Apple Health | Minimal | No | Yes | On-device storage |
| Strava | Extensive | Yes | Yes | No |
| Fitbit (Google) | Within Google ecosystem | Yes | Yes | Partial |
| Garmin Connect | Limited | No | Yes | Partial |
| Nike Run Club | Limited | Yes | Yes | No |
How to Lock Down Your Fitness App Privacy
1. Fix Your Location Sharing
- Strava: Profile → Privacy Controls → set activities to "Only You"
- Enable "Hide Start/End Point" (creates a privacy zone around your home)
- Use "Relative Effort" features that don't require GPS when possible
2. Disable Social Features
- Leaderboards, segments, and clubs make your patterns public
- Turn off auto-sharing to social media
- Switch your profile to private
3. Minimize Data Collection
- Grant only essential permissions (Location → "While Using App")
- Disable health categories you don't actively track
- Regularly delete old workout data
4. Audit Third-Party Connections
- Review all connected apps and services
- Revoke access for apps you no longer use
- Check permission scope before authorizing new integrations
5. Secure Your Devices
- Enable screen lock on your smartwatch
- Set up remote wipe in case of loss
- Disable Bluetooth discoverability when not pairing
When You Need to Share Health Data Safely
There are legitimate reasons to share fitness data — with a personal trainer, a doctor, or an insurance wellness program. But sending screenshots through iMessage or Messenger creates permanent copies on multiple devices and servers.
When you need to share sensitive health or fitness data, LOCK.PUB lets you create password-protected, encrypted links with expiration dates. Your trainer gets the data they need, and it disappears when it should.
Your Privacy Audit Checklist
- Review location sharing settings on all fitness apps
- Check profile visibility (public vs. private)
- Audit third-party app connections
- Delete old workout and health data
- Review period tracking app data sharing settings
- Enable smartwatch screen lock
Fitness apps are powerful health tools, but using them carelessly can expose your most sensitive personal data — your location patterns, your health status, and your daily routine. Audit your settings today, and when you need to share health data with someone, do it securely through LOCK.PUB.
Keywords
You might also like
Health Insurance ID Scams: How to Protect Your Medical Identity
Scammers are targeting health insurance IDs and digital health accounts to commit medical identity theft. Learn how to recognize and prevent these scams.
23andMe Bankruptcy and Your DNA: The Complete Guide to Genetic Data Privacy
23andMe filed for bankruptcy, putting 15 million users' genetic data at risk of being sold. Learn how to protect and delete your DNA data before it's too late.
Telehealth Privacy Risks: How to Protect Your Data During Virtual Doctor Visits
Telehealth platforms collect video, health records, and behavioral data. Learn the hidden privacy risks and how to protect yourself during virtual medical visits.
Create your password-protected link now
Create password-protected links, secret memos, and encrypted chats for free.
Get Started Free